Main Vulnerability Database Vulnerabilities #VU9620

Buffer overflow in Windows and Windows Server - CVE-2017-11885

Published: December 12, 2017 / Updated: December 12, 2017

Vulnerability identifier: #VU9620

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2017-11885

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Microsoft

Affected software:
Windows
Windows Server

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to boundary error when processing RPC requests in Routing and Remote Access (RRAS) service. A remote unauthenticated attacker can send a specially crafted RPC request to the vulnerable server and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2017-11885

Install updates from vendor's website.

Sources

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11885

Buffer overflow in Windows and Windows Server - CVE-2017-11885

Detailed vulnerability description

How to mitigate CVE-2017-11885

Sources

Please verify you're human